Vulnerabilities > Icewarp > WEB Mail > 5.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-05-19 | CVE-2006-2484 | Cross-Site Scripting vulnerability in IceWarp Universal WebMail PHPSESSID Parameter Cross-site scripting (XSS) vulnerability in index.html in IceWarp WebMail 5.5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the PHPSESSID parameter. network icewarp | 4.3 |
2005-01-28 | CVE-2005-0320 | Remote vulnerability in Icewarp web Mail 5.3 Multiple cross-site scripting vulnerabilities in MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) username parameter to login.html, (2) accountid parameter to accountsettings_add.html, or the (3) note, (4) title, and (5) location fields to calendar.html. | 5.0 |